IOC Radar
IPMediumSignal 93/100

125.25.102.224

Location
ThailandThailand
Bangkok, Bangkok
ASN
AS23969
TOT Public Company Limited
First Seen
Jan 20, 2024
Last Seen
Feb 22, 2026
Jan 20
First Seen
884d ago
Feb 22
Last Seen
120d ago
8
Reports
source reports
93%
Confidence
medium
Found in 8 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
93%
Signal Score
93 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

29 techniques

Network Information

CountryTHThailand
RegionBangkok, Bangkok
ASNAS23969
OrganizationTOT Public Company Limited

Feed Intelligence Summary

8 reports93% confidence
8
Source reports
93%
Confidence score
Category tags
active scanningarmasciiasiaasyncratbackdoorbase64-loaderbotnetbotnetdomaincensysclipboardhijackercode injectioncoinminercommand and controlcommand executiondarktortilladarkvisionratdata exfiltrationdbatloaderdcratddosddos attacksddosagentdistributed attacksdlldocdropped-by-lummastealerelfencodedexefakecaptchagafgytgetshellguloaderhajimehijackloaderhtahtmlindicatorinitiator ipinternet of thingsiot botnetiot/ics attackjpg-base64-loaderlokilummastealermalicious powershell activitymalicious softwaremalwaremeterpretermipsmirai botnetmodiloadermoobotmozimsinetworknetwork scanningopendirprocess injectionps1quasarratraccoonclipperratreconnaissanceremcosratremote accessresearchedrev-base64-loadersaint helena, ascension and tristan da cunhascripting attackssliversmartloadersmoke loadersshdkitt1027t1055t1059t1059.001t1059.007t1071t1071.001t1078t1086t1105t1133t1189t1190t1204t1204.001t1204.002t1486t1496t1499.002t1499.003t1565t1566t1583t1588t1589t1592t1595.001t1595.002t1595.003telecommunicationsthailandtsunamiua-wgetvidarvipkeyloggerweb exploitationxloaderxwormzip

Activity Timeline

1 total obs
Feb 22Feb 22

Threat Activity Heatmap

· Peak: 2026-02-22
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreHigh Risk
93
SIGNAL
Signal Score
93%
Confidence
8
Reports
First seenJan 20, 2024
Last seenFeb 22, 2026
GeolocationTH
CountryThailand
LocationBangkok, Bangkok
ASNAS23969
OrgTOT Public Company Limited
Coords13.6984, 100.4638

VirusTotal

Not checked

WHOIS

raw
inetnum: 125.25.102.0 - 125.25.102.255 netname: totnet descr: TOT Public Company Limited Bangkok country: th tech-c: tk56-ap admin-c: pa82-ap status: assigned non-portable mnt-by: maint-th-tot last-modified: 2008-09-04T07:19:46Z source: APNIC person: Pansak Arpakajorn nic-hdl: PA82-AP e-mail: [email protected] address: TOT Public Company Limited address: 89/2 Moo 3 Chaengwattana Rd, Laksi,Bangkok 10210 THAILAND phone: +66-2574-9178 fax-no: +66-2574-8401 country: TH mnt-by: MAINT-TH-TOT last-modified: 2010-05-07T07:54:11Z source: APNIC person: tawat kerdput nic-hdl: TK56-AP e-mail: [email protected] address: TOT Public Company Limited address: 89/2 Moo 3 Chaengwattana Rd, Laksi, Bangkok 10210 THAILAND phone: +66-2505-6117 fax-no: +66-2574-8401 country: TH mnt-by: MAINT-TH-TOT last-modified: 2010-05-07T08:01:24Z source: APNIC route: 125.25.96.0/19 descr: TOT Public Company Limited origin: AS9737 mnt-by: MAINT-TH-TOT last-modified: 2010-07-25T08:36:03Z source: APNIC
references
https://urlhaus.abuse.ch/browse/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 4 months ago
Appeared in 8 threat reports